Andrey Repin writes: >> What Cygwin could do is to perform ACL-based access checks independently of >> the "acl"/"noacl" mount mode on FSes supporting ACLs. However, if you want >> ACLs, why not use the "acl" mount mode in the first place? > > ACL inheritance, mostly. POSIX'ized permissions break inheritance on newly > created files, at times making these files inaccessible to native > applications, even though inheritance rules would allow it otherwise.
You can prevent this from happening if you forbid users to change the ACL and enforce inheritance. That's the reason I can't give those files sensible POSIX permissions since they'd need to be translated into ACL which I can't write. All our filers are set up that way. No I don't think this is a good idea, but I guess there'd been one support call too many with a share that somebody made inaccessible by fiddling with the ACL. Regards, Achim. -- +<[Q+ Matrix-12 WAVE#46+305 Neuron microQkb Andromeda XTk Blofeld]>+ DIY Stuff: http://Synth.Stromeko.net/DIY.html -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
